Back

Threat Hunter (GCO)

Threat Hunter (GCO) Sheffield, England

HSBC
Full Time Sheffield, England 10.56 - 12.04 GBP Today
Job description

Job description

Job Title: Threat Hunter


Big Bank Funding. FinTech Thinking.


Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers.


Role Description:

Sitting within the Monitoring and Threat Detection sub-function, the ‘Cybersecurity Threat Hunter’ role is primarily charged with proactively searching through the HSBC global estate for evidence of malicious activities in our systems and on our networks and finding ways to illuminate behaviours that have managed to evade current defences. Rather than relying primarily on static indicators and reacting to automatic rules and alerts, the Threat Hunter uses a deep knowledge of internal defences, cyber-security expertise and the latest cyber-threat intelligence to develop hypotheses and anticipate how those attackers will seek to bypass existing controls to continuously improve our cyber-defences.


Responsibilities:

  • Hunting for malicious or anomalous activity across the enterprise, using the various cybersecurity tools, platforms and capabilities available. Acting in co-ordination with GCO staff to lead the development and implementation of an advanced analysis and search capability focused on identifying potentially sophisticated APT and insider threat activities within the organisation.
  • Leveraging a ‘cyber intelligence led approach’ to researching new and existing threat actors and associated tactics, techniques and procedures (TTPs); developing a detailed understanding of their potential impact to the organisation, providing, developing and implementing recommended solutions for improving our defensive and detective capability.
  • Collaboration with Cybersecurity functions, e.g. Red Team, Cyber-threat Intelligence to develop hypotheses for the detection and/or presence of new attack techniques and evasion methods.
  • Coordinating threat hunting activities, leveraging intelligence from multiple internal and external sources.
  • Reviewing incident and penetration testing reports and corresponding logs, to identify gaps in our detection capability and provide recommendations to improve them.
  • Providing expert analytic investigative support on large scale and complex security incidents.
  • Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes
  • Training, mentoring and inspiring colleagues across the function and strengthening Cybersecurity Operations capabilities.
Requirements
Essential Skillset/Experience:
  • Excellent investigative skills, instinctive and creative, with an ability to think like the enemy
  • Strong problem-solving and trouble-shooting skills
  • Deep knowledge of hacker culture
  • Developed external peer network for sharing intelligence
  • Excellent understanding of cyber security principles, global financial services business models, regional compliance regulations and laws.
  • Excellent understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards.
  • Highest level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors
  • Expert level knowledge and demonstrated experience of common intelligence sharing platforms / protocols and experiencing operating within a collective defence environment with internal stakeholders and external partners.
  • Expert level knowledge of common enterprise technology infrastructure, platforms and tooling, including; Windows, Linux, infrastructure management and networking hardware.

The role will be based in Sheffield and will require you to go into the office 1 or 2 days a week. This role supports Hybrid working.



Come Power a Business that Defines How to Power the World

HSBC is committed to being an inclusive employer and providing an inclusive and accessible recruitment process for all. We will provide reasonable adjustments to remove any disadvantage to you being considered for this role. We are proud members of the Disability Confident Scheme, and will offer an interview to disabled candidates who meet the minimum criteria for the role. If you would like to receive any information in a different way or would like us to do anything differently to help you

Post Jobs Online Apply Job
Threat Hunter (GCO)
HSBC

www.hsbc.com
London, United Kingdom
Noel Quinn
$10+ billion (USD)
10000+ Employees
Company - Public
Banking & Lending
Finance
1865
Apply Job
Related Jobs

All Related Listed jobs

machinist
machinist
Tecomet Sheffield, England 18.55 - 15.45 GBP HOURLY Today

CNC Machinist: Level II

Build innovative solutions and design the future.
You can pursue your potential at Tecomet by...

Key Account Manager - London
Key Account Manager - London
Kingsland Drinks London, England 45000 - 50000 GBP ANNUAL Today

Commercial discretion and confidentiality is important especially when dealing with sensitive information from suppliers and customers.

Rides Cashiers full time
Rides Cashiers full time
Brighton Palace Pier Brighton, England 10.42 GBP HOURLY Today

Clear speaking an accurate with cash is a must as you will be dealing with a lot of money and also explaining height restrictions to families.

Day Cleaner Required - Glasgow West End
Day Cleaner Required - Glasgow West End
ecoSense Cleaning Glasgow, Scotland 10.42 GBP HOURLY Today

You can request up to 2 weeks' pay early*. All staff have full use of our award-winning staff app that allows you to control your employment with ecoSense.

Care Worker - Northenden and Sharston (Shift Pay) - Manchester (M23)
Care Worker - Northenden and Sharston (Shift Pay) - Manchester (M23)
Be Caring Manchester, England 10.9 - 11.5 GBP HOURLY Today

Paid induction training: 1 week classroom-based (Monday - Friday), 2 days shadowing and additional online modules. Pay: 11.50 for drivers - 10.90 for walkers.